opencode-qwen-oauth 2.3.1 → 2.4.0

package/dist/middleware/auth.middleware.d.ts

@@ -0,0 +1,10 @@
+/**
+ * Authentication middleware for fetch requests
+ * Handles token injection, retry logic, and error recovery
+ */
+export interface AuthMiddlewareConfig {
+    platform: string;
+    arch: string;
+}
+export declare function createAuthMiddleware(config: AuthMiddlewareConfig): (input: string | URL | Request, init?: RequestInit) => Promise<Response>;
+//# sourceMappingURL=auth.middleware.d.ts.map

package/dist/middleware/auth.middleware.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.middleware.d.ts","sourceRoot":"","sources":["../../src/middleware/auth.middleware.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAaH,MAAM,WAAW,oBAAoB;IACnC,QAAQ,EAAE,MAAM,CAAC;IACjB,IAAI,EAAE,MAAM,CAAC;CACd;AAED,wBAAgB,oBAAoB,CAAC,MAAM,EAAE,oBAAoB,IAG/B,OAAO,MAAM,GAAG,GAAG,GAAG,OAAO,EAAE,OAAO,WAAW,KAAG,OAAO,CAAC,QAAQ,CAAC,CA2GtG"}

package/dist/middleware/auth.middleware.js

@@ -0,0 +1,102 @@
+/**
+ * Authentication middleware for fetch requests
+ * Handles token injection, retry logic, and error recovery
+ */
+import { tokenService } from "../services/token.service.js";
+import { requestQueue } from "./rate-limit.middleware.js";
+import { credentialRepository } from "../repositories/credential.repository.js";
+import { warnLog, infoLog } from "../utils/logger.js";
+import { refreshAccessToken } from "../strategies/oauth.strategy.js";
+import { Mutex } from "../utils/mutex.js";
+const QWEN_CODE_VERSION = "0.10.3";
+const tokenRefreshMutex = new Mutex();
+export function createAuthMiddleware(config) {
+    const userAgent = `QwenCode/${QWEN_CODE_VERSION} (${config.platform}; ${config.arch})`;
+    return async function authFetch(input, init) {
+        const auth = await getAuthWithRefresh();
+        if (!auth) {
+            return createErrorResponse(401, "No authentication available");
+        }
+        return requestQueue.enqueue(async () => {
+            let currentAuth = auth;
+            for (let attempt = 0; attempt <= 2; attempt++) {
+                const url = typeof input === "string" ? input : input instanceof URL ? input.toString() : input.url;
+                const headers = new Headers(init?.headers);
+                const tokenToUse = currentAuth.apiKey || currentAuth.access;
+                if (tokenToUse) {
+                    headers.set("Authorization", `Bearer ${tokenToUse}`);
+                    headers.set("User-Agent", userAgent);
+                    headers.set("X-DashScope-CacheControl", "enable");
+                    headers.set("X-DashScope-UserAgent", userAgent);
+                    headers.set("X-DashScope-AuthType", "qwen-oauth");
+                }
+                const response = await fetch(url, { ...init, headers });
+                if (response.status === 429) {
+                    const retryAfter = response.headers.get("Retry-After") || "60";
+                    await new Promise((resolve) => setTimeout(resolve, parseInt(retryAfter, 10) * 1000));
+                    continue;
+                }
+                if (response.status === 401 || response.status === 403) {
+                    const refreshedAuth = await handleAuthFailure(currentAuth);
+                    if (refreshedAuth) {
+                        currentAuth = refreshedAuth;
+                        continue;
+                    }
+                    return createErrorResponse(401, "Authentication failed. Please re-authenticate.");
+                }
+                return response;
+            }
+            return createErrorResponse(500, "Maximum retry attempts exceeded");
+        });
+    };
+    async function getAuthWithRefresh() {
+        try {
+            return await tokenService.refreshIfNeeded();
+        }
+        catch (error) {
+            warnLog("Failed to refresh token", { error: String(error) });
+            const fileAuth = tokenService.loadFromFile();
+            if (fileAuth) {
+                tokenService.setCachedAuth(fileAuth);
+                return fileAuth;
+            }
+            return null;
+        }
+    }
+    async function handleAuthFailure(currentAuth) {
+        warnLog("Received 401/403, attempting token refresh");
+        return tokenRefreshMutex.runExclusive(async () => {
+            if (!currentAuth.refresh) {
+                return null;
+            }
+            const result = await refreshAccessToken(currentAuth.refresh);
+            if (result.success && result.access_token) {
+                const expiresIn = result.expires_in || 0;
+                const newExpires = expiresIn > 0 ? Date.now() + expiresIn * 1000 : Date.now() + 3600 * 1000;
+                const newAuth = {
+                    type: "oauth",
+                    refresh: result.refresh_token || currentAuth.refresh,
+                    access: result.access_token,
+                    expires: newExpires,
+                    apiKey: result.api_key || currentAuth.apiKey,
+                };
+                tokenService.setCachedAuth(newAuth);
+                credentialRepository.save({
+                    accessToken: newAuth.access,
+                    refreshToken: newAuth.refresh,
+                    expiryDate: newExpires,
+                    tokenType: "Bearer",
+                });
+                infoLog("Token refreshed after 401/403");
+                return newAuth;
+            }
+            return null;
+        });
+    }
+    function createErrorResponse(status, message) {
+        return new Response(JSON.stringify({
+            error: { code: "auth_error", message, type: "auth_error" },
+        }), { status, headers: { "Content-Type": "application/json" } });
+    }
+}
+//# sourceMappingURL=auth.middleware.js.map

package/dist/middleware/auth.middleware.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.middleware.js","sourceRoot":"","sources":["../../src/middleware/auth.middleware.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,YAAY,EAAE,MAAM,8BAA8B,CAAC;AAC5D,OAAO,EAAE,YAAY,EAAE,MAAM,4BAA4B,CAAC;AAC1D,OAAO,EAAE,oBAAoB,EAAE,MAAM,0CAA0C,CAAC;AAEhF,OAAO,EAAY,OAAO,EAAE,OAAO,EAAE,MAAM,oBAAoB,CAAC;AAChE,OAAO,EAAE,kBAAkB,EAAE,MAAM,iCAAiC,CAAC;AACrE,OAAO,EAAE,KAAK,EAAE,MAAM,mBAAmB,CAAC;AAE1C,MAAM,iBAAiB,GAAG,QAAQ,CAAC;AACnC,MAAM,iBAAiB,GAAG,IAAI,KAAK,EAAE,CAAC;AAOtC,MAAM,UAAU,oBAAoB,CAAC,MAA4B;IAC/D,MAAM,SAAS,GAAG,YAAY,iBAAiB,KAAK,MAAM,CAAC,QAAQ,KAAK,MAAM,CAAC,IAAI,GAAG,CAAC;IAEvF,OAAO,KAAK,UAAU,SAAS,CAAC,KAA6B,EAAE,IAAkB;QAC/E,MAAM,IAAI,GAAG,MAAM,kBAAkB,EAAE,CAAC;QAExC,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,mBAAmB,CAAC,GAAG,EAAE,6BAA6B,CAAC,CAAC;QACjE,CAAC;QAED,OAAO,YAAY,CAAC,OAAO,CAAC,KAAK,IAAI,EAAE;YACrC,IAAI,WAAW,GAAqB,IAAI,CAAC;YAEzC,KAAK,IAAI,OAAO,GAAG,CAAC,EAAE,OAAO,IAAI,CAAC,EAAE,OAAO,EAAE,EAAE,CAAC;gBAC9C,MAAM,GAAG,GAAG,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,YAAY,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAE,KAAiB,CAAC,GAAG,CAAC;gBACjH,MAAM,OAAO,GAAG,IAAI,OAAO,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;gBAC3C,MAAM,UAAU,GAAG,WAAW,CAAC,MAAM,IAAI,WAAW,CAAC,MAAM,CAAC;gBAE5D,IAAI,UAAU,EAAE,CAAC;oBACf,OAAO,CAAC,GAAG,CAAC,eAAe,EAAE,UAAU,UAAU,EAAE,CAAC,CAAC;oBACrD,OAAO,CAAC,GAAG,CAAC,YAAY,EAAE,SAAS,CAAC,CAAC;oBACrC,OAAO,CAAC,GAAG,CAAC,0BAA0B,EAAE,QAAQ,CAAC,CAAC;oBAClD,OAAO,CAAC,GAAG,CAAC,uBAAuB,EAAE,SAAS,CAAC,CAAC;oBAChD,OAAO,CAAC,GAAG,CAAC,sBAAsB,EAAE,YAAY,CAAC,CAAC;gBACpD,CAAC;gBAED,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE,EAAE,GAAG,IAAI,EAAE,OAAO,EAAE,CAAC,CAAC;gBAExD,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;oBAC5B,MAAM,UAAU,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,aAAa,CAAC,IAAI,IAAI,CAAC;oBAC/D,MAAM,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,QAAQ,CAAC,UAAU,EAAE,EAAE,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC;oBACrF,SAAS;gBACX,CAAC;gBAED,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;oBACvD,MAAM,aAAa,GAAG,MAAM,iBAAiB,CAAC,WAAW,CAAC,CAAC;oBAC3D,IAAI,aAAa,EAAE,CAAC;wBAClB,WAAW,GAAG,aAAa,CAAC;wBAC5B,SAAS;oBACX,CAAC;oBACD,OAAO,mBAAmB,CAAC,GAAG,EAAE,gDAAgD,CAAC,CAAC;gBACpF,CAAC;gBAED,OAAO,QAAQ,CAAC;YAClB,CAAC;YAED,OAAO,mBAAmB,CAAC,GAAG,EAAE,iCAAiC,CAAC,CAAC;QACrE,CAAC,CAAC,CAAC;IACL,CAAC,CAAC;IAEF,KAAK,UAAU,kBAAkB;QAC/B,IAAI,CAAC;YACH,OAAO,MAAM,YAAY,CAAC,eAAe,EAAE,CAAC;QAC9C,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,yBAAyB,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YAC7D,MAAM,QAAQ,GAAG,YAAY,CAAC,YAAY,EAAE,CAAC;YAC7C,IAAI,QAAQ,EAAE,CAAC;gBACb,YAAY,CAAC,aAAa,CAAC,QAAQ,CAAC,CAAC;gBACrC,OAAO,QAAQ,CAAC;YAClB,CAAC;YACD,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAED,KAAK,UAAU,iBAAiB,CAAC,WAA6B;QAC5D,OAAO,CAAC,4CAA4C,CAAC,CAAC;QAEtD,OAAO,iBAAiB,CAAC,YAAY,CAAC,KAAK,IAAI,EAAE;YAC/C,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,CAAC;gBACzB,OAAO,IAAI,CAAC;YACd,CAAC;YAED,MAAM,MAAM,GAAG,MAAM,kBAAkB,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC;YAE7D,IAAI,MAAM,CAAC,OAAO,IAAI,MAAM,CAAC,YAAY,EAAE,CAAC;gBAC1C,MAAM,SAAS,GAAG,MAAM,CAAC,UAAU,IAAI,CAAC,CAAC;gBACzC,MAAM,UAAU,GAAG,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,GAAG,IAAI,CAAC;gBAE5F,MAAM,OAAO,GAAqB;oBAChC,IAAI,EAAE,OAAO;oBACb,OAAO,EAAE,MAAM,CAAC,aAAa,IAAI,WAAW,CAAC,OAAO;oBACpD,MAAM,EAAE,MAAM,CAAC,YAAY;oBAC3B,OAAO,EAAE,UAAU;oBACnB,MAAM,EAAE,MAAM,CAAC,OAAO,IAAI,WAAW,CAAC,MAAM;iBAC7C,CAAC;gBAEF,YAAY,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC;gBACpC,oBAAoB,CAAC,IAAI,CAAC;oBACxB,WAAW,EAAE,OAAO,CAAC,MAAM;oBAC3B,YAAY,EAAE,OAAO,CAAC,OAAO;oBAC7B,UAAU,EAAE,UAAU;oBACtB,SAAS,EAAE,QAAQ;iBACpB,CAAC,CAAC;gBAEH,OAAO,CAAC,+BAA+B,CAAC,CAAC;gBACzC,OAAO,OAAO,CAAC;YACjB,CAAC;YAED,OAAO,IAAI,CAAC;QACd,CAAC,CAAC,CAAC;IACL,CAAC;IAED,SAAS,mBAAmB,CAAC,MAAc,EAAE,OAAe;QAC1D,OAAO,IAAI,QAAQ,CACjB,IAAI,CAAC,SAAS,CAAC;YACb,KAAK,EAAE,EAAE,IAAI,EAAE,YAAY,EAAE,OAAO,EAAE,IAAI,EAAE,YAAY,EAAE;SAC3D,CAAC,EACF,EAAE,MAAM,EAAE,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE,EAAE,CAC5D,CAAC;IACJ,CAAC;AACH,CAAC"}

package/dist/middleware/rate-limit.middleware.d.ts

@@ -0,0 +1,10 @@
+export declare class RequestQueue {
+    private lastRequestTime;
+    private readonly MIN_INTERVAL;
+    private readonly JITTER_MIN;
+    private readonly JITTER_MAX;
+    private getJitter;
+    enqueue<T>(fn: () => Promise<T>): Promise<T>;
+}
+export declare const requestQueue: RequestQueue;
+//# sourceMappingURL=rate-limit.middleware.d.ts.map

package/dist/middleware/rate-limit.middleware.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"rate-limit.middleware.d.ts","sourceRoot":"","sources":["../../src/middleware/rate-limit.middleware.ts"],"names":[],"mappings":"AAAA,qBAAa,YAAY;IACvB,OAAO,CAAC,eAAe,CAAK;IAC5B,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAQ;IACrC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAO;IAClC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAQ;IAEnC,OAAO,CAAC,SAAS;IAIX,OAAO,CAAC,CAAC,EAAE,EAAE,EAAE,MAAM,OAAO,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC;CAanD;AAED,eAAO,MAAM,YAAY,cAAqB,CAAC"}

package/dist/middleware/rate-limit.middleware.js

@@ -0,0 +1,22 @@
+export class RequestQueue {
+    lastRequestTime = 0;
+    MIN_INTERVAL = 1000;
+    JITTER_MIN = 500;
+    JITTER_MAX = 1500;
+    getJitter() {
+        return Math.random() * (this.JITTER_MAX - this.JITTER_MIN) + this.JITTER_MIN;
+    }
+    async enqueue(fn) {
+        const elapsed = Date.now() - this.lastRequestTime;
+        const baseWait = Math.max(0, this.MIN_INTERVAL - elapsed);
+        const jitter = this.getJitter();
+        const waitTime = baseWait + jitter;
+        if (waitTime > 0) {
+            await new Promise(resolve => setTimeout(resolve, waitTime));
+        }
+        this.lastRequestTime = Date.now();
+        return fn();
+    }
+}
+export const requestQueue = new RequestQueue();
+//# sourceMappingURL=rate-limit.middleware.js.map

package/dist/middleware/rate-limit.middleware.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"rate-limit.middleware.js","sourceRoot":"","sources":["../../src/middleware/rate-limit.middleware.ts"],"names":[],"mappings":"AAAA,MAAM,OAAO,YAAY;IACf,eAAe,GAAG,CAAC,CAAC;IACX,YAAY,GAAG,IAAI,CAAC;IACpB,UAAU,GAAG,GAAG,CAAC;IACjB,UAAU,GAAG,IAAI,CAAC;IAE3B,SAAS;QACf,OAAO,IAAI,CAAC,MAAM,EAAE,GAAG,CAAC,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,UAAU,CAAC;IAC/E,CAAC;IAED,KAAK,CAAC,OAAO,CAAI,EAAoB;QACnC,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,eAAe,CAAC;QAClD,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,YAAY,GAAG,OAAO,CAAC,CAAC;QAC1D,MAAM,MAAM,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;QAChC,MAAM,QAAQ,GAAG,QAAQ,GAAG,MAAM,CAAC;QAEnC,IAAI,QAAQ,GAAG,CAAC,EAAE,CAAC;YACjB,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC,CAAC;QAC9D,CAAC;QAED,IAAI,CAAC,eAAe,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAClC,OAAO,EAAE,EAAE,CAAC;IACd,CAAC;CACF;AAED,MAAM,CAAC,MAAM,YAAY,GAAG,IAAI,YAAY,EAAE,CAAC"}

package/dist/middleware/retry.middleware.d.ts

@@ -0,0 +1,11 @@
+/**
+ * Retry middleware with exponential backoff
+ */
+export interface RetryConfig {
+    maxRetries?: number;
+    baseDelay?: number;
+    maxDelay?: number;
+    timeout?: number;
+}
+export declare function fetchWithRetry(url: string, init: RequestInit, config?: RetryConfig): Promise<Response>;
+//# sourceMappingURL=retry.middleware.d.ts.map

package/dist/middleware/retry.middleware.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"retry.middleware.d.ts","sourceRoot":"","sources":["../../src/middleware/retry.middleware.ts"],"names":[],"mappings":"AAAA;;GAEG;AAIH,MAAM,WAAW,WAAW;IAC1B,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AASD,wBAAsB,cAAc,CAClC,GAAG,EAAE,MAAM,EACX,IAAI,EAAE,WAAW,EACjB,MAAM,GAAE,WAAgB,GACvB,OAAO,CAAC,QAAQ,CAAC,CAqCnB"}

package/dist/middleware/retry.middleware.js

@@ -0,0 +1,43 @@
+/**
+ * Retry middleware with exponential backoff
+ */
+import { debugLog, warnLog } from "../utils/logger.js";
+const DEFAULT_CONFIG = {
+    maxRetries: 3,
+    baseDelay: 1000,
+    maxDelay: 30000,
+    timeout: 30000,
+};
+export async function fetchWithRetry(url, init, config = {}) {
+    const { maxRetries, baseDelay, maxDelay, timeout } = { ...DEFAULT_CONFIG, ...config };
+    let lastError = null;
+    for (let attempt = 0; attempt <= maxRetries; attempt++) {
+        try {
+            const controller = new AbortController();
+            const timeoutId = setTimeout(() => controller.abort(), timeout);
+            const response = await fetch(url, {
+                ...init,
+                signal: controller.signal,
+            });
+            clearTimeout(timeoutId);
+            if (response.status === 429) {
+                const retryAfter = response.headers.get("Retry-After") || "60";
+                const waitTimeMs = parseInt(retryAfter, 10) * 1000;
+                warnLog("Rate limited (429), waiting and retrying", { retryAfter, waitTimeMs });
+                await new Promise((resolve) => setTimeout(resolve, waitTimeMs));
+                continue;
+            }
+            return response;
+        }
+        catch (error) {
+            lastError = error instanceof Error ? error : new Error(String(error));
+            debugLog(`Request failed (attempt ${attempt + 1}/${maxRetries + 1})`, { error: lastError.message });
+            if (attempt < maxRetries) {
+                const delay = Math.min(baseDelay * Math.pow(2, attempt), maxDelay);
+                await new Promise((resolve) => setTimeout(resolve, delay));
+            }
+        }
+    }
+    throw lastError || new Error("Request failed after all retries");
+}
+//# sourceMappingURL=retry.middleware.js.map

package/dist/middleware/retry.middleware.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"retry.middleware.js","sourceRoot":"","sources":["../../src/middleware/retry.middleware.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,MAAM,oBAAoB,CAAC;AASvD,MAAM,cAAc,GAA0B;IAC5C,UAAU,EAAE,CAAC;IACb,SAAS,EAAE,IAAI;IACf,QAAQ,EAAE,KAAK;IACf,OAAO,EAAE,KAAK;CACf,CAAC;AAEF,MAAM,CAAC,KAAK,UAAU,cAAc,CAClC,GAAW,EACX,IAAiB,EACjB,SAAsB,EAAE;IAExB,MAAM,EAAE,UAAU,EAAE,SAAS,EAAE,QAAQ,EAAE,OAAO,EAAE,GAAG,EAAE,GAAG,cAAc,EAAE,GAAG,MAAM,EAAE,CAAC;IACtF,IAAI,SAAS,GAAiB,IAAI,CAAC;IAEnC,KAAK,IAAI,OAAO,GAAG,CAAC,EAAE,OAAO,IAAI,UAAU,EAAE,OAAO,EAAE,EAAE,CAAC;QACvD,IAAI,CAAC;YACH,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;YACzC,MAAM,SAAS,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,OAAO,CAAC,CAAC;YAEhE,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;gBAChC,GAAG,IAAI;gBACP,MAAM,EAAE,UAAU,CAAC,MAAM;aAC1B,CAAC,CAAC;YAEH,YAAY,CAAC,SAAS,CAAC,CAAC;YAExB,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;gBAC5B,MAAM,UAAU,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,aAAa,CAAC,IAAI,IAAI,CAAC;gBAC/D,MAAM,UAAU,GAAG,QAAQ,CAAC,UAAU,EAAE,EAAE,CAAC,GAAG,IAAI,CAAC;gBACnD,OAAO,CAAC,0CAA0C,EAAE,EAAE,UAAU,EAAE,UAAU,EAAE,CAAC,CAAC;gBAChF,MAAM,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC,CAAC;gBAChE,SAAS;YACX,CAAC;YAED,OAAO,QAAQ,CAAC;QAClB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,SAAS,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;YACtE,QAAQ,CAAC,2BAA2B,OAAO,GAAG,CAAC,IAAI,UAAU,GAAG,CAAC,GAAG,EAAE,EAAE,KAAK,EAAE,SAAS,CAAC,OAAO,EAAE,CAAC,CAAC;YAEpG,IAAI,OAAO,GAAG,UAAU,EAAE,CAAC;gBACzB,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,OAAO,CAAC,EAAE,QAAQ,CAAC,CAAC;gBACnE,MAAM,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC,CAAC;YAC7D,CAAC;QACH,CAAC;IACH,CAAC;IAED,MAAM,SAAS,IAAI,IAAI,KAAK,CAAC,kCAAkC,CAAC,CAAC;AACnE,CAAC"}

package/dist/repositories/credential.repository.d.ts

@@ -0,0 +1,13 @@
+/**
+ * Credential storage repository
+ * Handles file system operations for OAuth credentials
+ */
+import { StoredCredentials } from "../types.js";
+export declare class CredentialRepository {
+    private ensureDirectory;
+    save(credentials: StoredCredentials): boolean;
+    load(): StoredCredentials | null;
+    clear(): boolean;
+}
+export declare const credentialRepository: CredentialRepository;
+//# sourceMappingURL=credential.repository.d.ts.map

package/dist/repositories/credential.repository.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"credential.repository.d.ts","sourceRoot":"","sources":["../../src/repositories/credential.repository.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAKH,OAAO,EAAE,iBAAiB,EAAE,MAAM,aAAa,CAAC;AAKhD,qBAAa,oBAAoB;IAC/B,OAAO,CAAC,eAAe;IAOvB,IAAI,CAAC,WAAW,EAAE,iBAAiB,GAAG,OAAO;IAY7C,IAAI,IAAI,iBAAiB,GAAG,IAAI;IA0BhC,KAAK,IAAI,OAAO;CAWjB;AAED,eAAO,MAAM,oBAAoB,sBAA6B,CAAC"}

package/dist/repositories/credential.repository.js

@@ -0,0 +1,65 @@
+/**
+ * Credential storage repository
+ * Handles file system operations for OAuth credentials
+ */
+import { existsSync, mkdirSync, readFileSync, writeFileSync } from "fs";
+import { join } from "path";
+import { homedir } from "os";
+import { debugLog, warnLog } from "../utils/logger.js";
+const CREDENTIALS_PATH = join(homedir(), ".qwen", "oauth_creds.json");
+export class CredentialRepository {
+    ensureDirectory() {
+        const dir = join(homedir(), ".qwen");
+        if (!existsSync(dir)) {
+            mkdirSync(dir, { recursive: true });
+        }
+    }
+    save(credentials) {
+        try {
+            this.ensureDirectory();
+            writeFileSync(CREDENTIALS_PATH, JSON.stringify(credentials, null, 2));
+            debugLog("Credentials saved", { path: CREDENTIALS_PATH });
+            return true;
+        }
+        catch (error) {
+            warnLog("Failed to save credentials", { error: String(error) });
+            return false;
+        }
+    }
+    load() {
+        try {
+            if (!existsSync(CREDENTIALS_PATH)) {
+                return null;
+            }
+            const data = readFileSync(CREDENTIALS_PATH, "utf-8");
+            const credentials = JSON.parse(data);
+            if (!credentials.accessToken || !credentials.refreshToken) {
+                return null;
+            }
+            debugLog("Credentials loaded", {
+                hasAccess: !!credentials.accessToken,
+                hasRefresh: !!credentials.refreshToken,
+                expiryDate: credentials.expiryDate,
+            });
+            return credentials;
+        }
+        catch (error) {
+            debugLog("Failed to load credentials", { error: String(error) });
+            return null;
+        }
+    }
+    clear() {
+        try {
+            if (existsSync(CREDENTIALS_PATH)) {
+                writeFileSync(CREDENTIALS_PATH, JSON.stringify({}));
+            }
+            return true;
+        }
+        catch (error) {
+            warnLog("Failed to clear credentials", { error: String(error) });
+            return false;
+        }
+    }
+}
+export const credentialRepository = new CredentialRepository();
+//# sourceMappingURL=credential.repository.js.map

package/dist/repositories/credential.repository.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"credential.repository.js","sourceRoot":"","sources":["../../src/repositories/credential.repository.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,YAAY,EAAE,aAAa,EAAE,MAAM,IAAI,CAAC;AACxE,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,EAAE,OAAO,EAAE,MAAM,IAAI,CAAC;AAE7B,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,MAAM,oBAAoB,CAAC;AAEvD,MAAM,gBAAgB,GAAG,IAAI,CAAC,OAAO,EAAE,EAAE,OAAO,EAAE,kBAAkB,CAAC,CAAC;AAEtE,MAAM,OAAO,oBAAoB;IACvB,eAAe;QACrB,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,EAAE,EAAE,OAAO,CAAC,CAAC;QACrC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;YACrB,SAAS,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QACtC,CAAC;IACH,CAAC;IAED,IAAI,CAAC,WAA8B;QACjC,IAAI,CAAC;YACH,IAAI,CAAC,eAAe,EAAE,CAAC;YACvB,aAAa,CAAC,gBAAgB,EAAE,IAAI,CAAC,SAAS,CAAC,WAAW,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;YACtE,QAAQ,CAAC,mBAAmB,EAAE,EAAE,IAAI,EAAE,gBAAgB,EAAE,CAAC,CAAC;YAC1D,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,4BAA4B,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YAChE,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAED,IAAI;QACF,IAAI,CAAC;YACH,IAAI,CAAC,UAAU,CAAC,gBAAgB,CAAC,EAAE,CAAC;gBAClC,OAAO,IAAI,CAAC;YACd,CAAC;YAED,MAAM,IAAI,GAAG,YAAY,CAAC,gBAAgB,EAAE,OAAO,CAAC,CAAC;YACrD,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAsB,CAAC;YAE1D,IAAI,CAAC,WAAW,CAAC,WAAW,IAAI,CAAC,WAAW,CAAC,YAAY,EAAE,CAAC;gBAC1D,OAAO,IAAI,CAAC;YACd,CAAC;YAED,QAAQ,CAAC,oBAAoB,EAAE;gBAC7B,SAAS,EAAE,CAAC,CAAC,WAAW,CAAC,WAAW;gBACpC,UAAU,EAAE,CAAC,CAAC,WAAW,CAAC,YAAY;gBACtC,UAAU,EAAE,WAAW,CAAC,UAAU;aACnC,CAAC,CAAC;YAEH,OAAO,WAAW,CAAC;QACrB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,QAAQ,CAAC,4BAA4B,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YACjE,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAED,KAAK;QACH,IAAI,CAAC;YACH,IAAI,UAAU,CAAC,gBAAgB,CAAC,EAAE,CAAC;gBACjC,aAAa,CAAC,gBAAgB,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC,CAAC;YACtD,CAAC;YACD,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,6BAA6B,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YACjE,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;CACF;AAED,MAAM,CAAC,MAAM,oBAAoB,GAAG,IAAI,oBAAoB,EAAE,CAAC"}

package/dist/services/token.service.d.ts

@@ -0,0 +1,20 @@
+/**
+ * Token management service
+ * Handles token refresh, validation, and caching
+ */
+import { OAuthAuthDetails } from "../types.js";
+export declare class TokenService {
+    private cachedToken;
+    private cachedTokenExpiry;
+    private lastRefreshTime;
+    private cachedAuth;
+    private mutex;
+    setCachedAuth(auth: OAuthAuthDetails): void;
+    getCachedAuth(): OAuthAuthDetails | null;
+    refreshIfNeeded(): Promise<OAuthAuthDetails>;
+    private saveCredentials;
+    loadFromFile(): OAuthAuthDetails | null;
+    reset(): void;
+}
+export declare const tokenService: TokenService;
+//# sourceMappingURL=token.service.d.ts.map

package/dist/services/token.service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"token.service.d.ts","sourceRoot":"","sources":["../../src/services/token.service.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAKH,OAAO,EAAE,gBAAgB,EAAoC,MAAM,aAAa,CAAC;AAMjF,qBAAa,YAAY;IACvB,OAAO,CAAC,WAAW,CAAuB;IAC1C,OAAO,CAAC,iBAAiB,CAAK;IAC9B,OAAO,CAAC,eAAe,CAAK;IAC5B,OAAO,CAAC,UAAU,CAAiC;IACnD,OAAO,CAAC,KAAK,CAAe;IAE5B,aAAa,CAAC,IAAI,EAAE,gBAAgB,GAAG,IAAI;IAI3C,aAAa,IAAI,gBAAgB,GAAG,IAAI;IAIlC,eAAe,IAAI,OAAO,CAAC,gBAAgB,CAAC;IAwElD,OAAO,CAAC,eAAe;IASvB,YAAY,IAAI,gBAAgB,GAAG,IAAI;IAYvC,KAAK,IAAI,IAAI;CAMd;AAED,eAAO,MAAM,YAAY,cAAqB,CAAC"}

package/dist/services/token.service.js

@@ -0,0 +1,106 @@
+/**
+ * Token management service
+ * Handles token refresh, validation, and caching
+ */
+import { Mutex } from "../utils/mutex.js";
+import { refreshAccessToken as oauthRefreshToken } from "../strategies/oauth.strategy.js";
+import { credentialRepository } from "../repositories/credential.repository.js";
+import { debugLog, infoLog, warnLog } from "../utils/logger.js";
+const TOKEN_CACHE_DURATION = 5 * 60 * 1000;
+const REFRESH_BEFORE_EXPIRY_MS = 5 * 60 * 1000;
+export class TokenService {
+    cachedToken = null;
+    cachedTokenExpiry = 0;
+    lastRefreshTime = 0;
+    cachedAuth = null;
+    mutex = new Mutex();
+    setCachedAuth(auth) {
+        this.cachedAuth = auth;
+    }
+    getCachedAuth() {
+        return this.cachedAuth;
+    }
+    async refreshIfNeeded() {
+        const now = Date.now();
+        if (this.cachedToken && now < this.cachedTokenExpiry && now - this.lastRefreshTime < TOKEN_CACHE_DURATION) {
+            if (this.cachedAuth) {
+                return this.cachedAuth;
+            }
+        }
+        if (!this.cachedAuth) {
+            throw new Error("No authentication available");
+        }
+        const expiresAt = this.cachedAuth.expires || 0;
+        const timeUntilExpiry = expiresAt - now;
+        const hasValidExpiry = expiresAt > now;
+        const shouldRefresh = !this.cachedAuth.access ||
+            !hasValidExpiry ||
+            timeUntilExpiry < REFRESH_BEFORE_EXPIRY_MS;
+        debugLog("Token refresh check", {
+            hasAccess: !!this.cachedAuth.access,
+            expiresAt: expiresAt > 0 ? new Date(expiresAt).toISOString() : "not set",
+            timeUntilExpiry: timeUntilExpiry > 0 ? Math.round(timeUntilExpiry / 1000) + "s" : "EXPIRED",
+            shouldRefresh,
+        });
+        if (!shouldRefresh && this.cachedToken) {
+            debugLog("Token still valid, no refresh needed");
+            return this.cachedAuth;
+        }
+        infoLog("Token refresh needed", {
+            reason: !this.cachedAuth.access ? "no access token" : !hasValidExpiry ? "token expired" : "token expires soon",
+        });
+        return this.mutex.runExclusive(async () => {
+            const currentAuth = this.cachedAuth;
+            if (!currentAuth || !currentAuth.refresh) {
+                throw new Error("No refresh token available");
+            }
+            const result = await oauthRefreshToken(currentAuth.refresh);
+            if (result.success && result.access_token) {
+                const expiresIn = result.expires_in || 0;
+                const newExpires = expiresIn > 0 ? Date.now() + expiresIn * 1000 : Date.now() + 3600 * 1000;
+                const newAuth = {
+                    type: "oauth",
+                    refresh: result.refresh_token || currentAuth.refresh,
+                    access: result.access_token,
+                    expires: newExpires,
+                    apiKey: result.api_key || currentAuth.apiKey,
+                };
+                this.cachedAuth = newAuth;
+                this.cachedToken = newAuth.access;
+                this.cachedTokenExpiry = newExpires;
+                this.lastRefreshTime = Date.now();
+                this.saveCredentials(newAuth);
+                return newAuth;
+            }
+            warnLog("Token refresh failed", { error: result.error });
+            throw new Error(result.error || "Token refresh failed");
+        });
+    }
+    saveCredentials(auth) {
+        credentialRepository.save({
+            accessToken: auth.access,
+            refreshToken: auth.refresh,
+            expiryDate: auth.expires || Date.now() + 3600 * 1000,
+            tokenType: "Bearer",
+        });
+    }
+    loadFromFile() {
+        const stored = credentialRepository.load();
+        if (!stored)
+            return null;
+        return {
+            type: "oauth",
+            access: stored.accessToken,
+            refresh: stored.refreshToken,
+            expires: stored.expiryDate,
+        };
+    }
+    reset() {
+        this.cachedToken = null;
+        this.cachedTokenExpiry = 0;
+        this.lastRefreshTime = 0;
+        this.cachedAuth = null;
+    }
+}
+export const tokenService = new TokenService();
+//# sourceMappingURL=token.service.js.map

package/dist/services/token.service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"token.service.js","sourceRoot":"","sources":["../../src/services/token.service.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,KAAK,EAAE,MAAM,mBAAmB,CAAC;AAC1C,OAAO,EAAE,kBAAkB,IAAI,iBAAiB,EAAE,MAAM,iCAAiC,CAAC;AAC1F,OAAO,EAAE,oBAAoB,EAAE,MAAM,0CAA0C,CAAC;AAEhF,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,oBAAoB,CAAC;AAEhE,MAAM,oBAAoB,GAAG,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC;AAC3C,MAAM,wBAAwB,GAAG,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC;AAE/C,MAAM,OAAO,YAAY;IACf,WAAW,GAAkB,IAAI,CAAC;IAClC,iBAAiB,GAAG,CAAC,CAAC;IACtB,eAAe,GAAG,CAAC,CAAC;IACpB,UAAU,GAA4B,IAAI,CAAC;IAC3C,KAAK,GAAG,IAAI,KAAK,EAAE,CAAC;IAE5B,aAAa,CAAC,IAAsB;QAClC,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC;IACzB,CAAC;IAED,aAAa;QACX,OAAO,IAAI,CAAC,UAAU,CAAC;IACzB,CAAC;IAED,KAAK,CAAC,eAAe;QACnB,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAEvB,IAAI,IAAI,CAAC,WAAW,IAAI,GAAG,GAAG,IAAI,CAAC,iBAAiB,IAAI,GAAG,GAAG,IAAI,CAAC,eAAe,GAAG,oBAAoB,EAAE,CAAC;YAC1G,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;gBACpB,OAAO,IAAI,CAAC,UAAU,CAAC;YACzB,CAAC;QACH,CAAC;QAED,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,CAAC;YACrB,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,CAAC;QACjD,CAAC;QAED,MAAM,SAAS,GAAG,IAAI,CAAC,UAAU,CAAC,OAAO,IAAI,CAAC,CAAC;QAC/C,MAAM,eAAe,GAAG,SAAS,GAAG,GAAG,CAAC;QACxC,MAAM,cAAc,GAAG,SAAS,GAAG,GAAG,CAAC;QACvC,MAAM,aAAa,GACjB,CAAC,IAAI,CAAC,UAAU,CAAC,MAAM;YACvB,CAAC,cAAc;YACf,eAAe,GAAG,wBAAwB,CAAC;QAE7C,QAAQ,CAAC,qBAAqB,EAAE;YAC9B,SAAS,EAAE,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,MAAM;YACnC,SAAS,EAAE,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC,SAAS,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC,SAAS;YACxE,eAAe,EAAE,eAAe,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,eAAe,GAAG,IAAI,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC,SAAS;YAC3F,aAAa;SACd,CAAC,CAAC;QAEH,IAAI,CAAC,aAAa,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;YACvC,QAAQ,CAAC,sCAAsC,CAAC,CAAC;YACjD,OAAO,IAAI,CAAC,UAAU,CAAC;QACzB,CAAC;QAED,OAAO,CAAC,sBAAsB,EAAE;YAC9B,MAAM,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,oBAAoB;SAC/G,CAAC,CAAC;QAEH,OAAO,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,KAAK,IAAI,EAAE;YACxC,MAAM,WAAW,GAAG,IAAI,CAAC,UAAU,CAAC;YACpC,IAAI,CAAC,WAAW,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,CAAC;gBACzC,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;YAChD,CAAC;YAED,MAAM,MAAM,GAAG,MAAM,iBAAiB,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC;YAE5D,IAAI,MAAM,CAAC,OAAO,IAAI,MAAM,CAAC,YAAY,EAAE,CAAC;gBAC1C,MAAM,SAAS,GAAG,MAAM,CAAC,UAAU,IAAI,CAAC,CAAC;gBACzC,MAAM,UAAU,GAAG,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,GAAG,IAAI,CAAC;gBAE5F,MAAM,OAAO,GAAqB;oBAChC,IAAI,EAAE,OAAO;oBACb,OAAO,EAAE,MAAM,CAAC,aAAa,IAAI,WAAW,CAAC,OAAO;oBACpD,MAAM,EAAE,MAAM,CAAC,YAAY;oBAC3B,OAAO,EAAE,UAAU;oBACnB,MAAM,EAAE,MAAM,CAAC,OAAO,IAAI,WAAW,CAAC,MAAM;iBAC7C,CAAC;gBAEF,IAAI,CAAC,UAAU,GAAG,OAAO,CAAC;gBAC1B,IAAI,CAAC,WAAW,GAAG,OAAO,CAAC,MAAM,CAAC;gBAClC,IAAI,CAAC,iBAAiB,GAAG,UAAU,CAAC;gBACpC,IAAI,CAAC,eAAe,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;gBAElC,IAAI,CAAC,eAAe,CAAC,OAAO,CAAC,CAAC;gBAE9B,OAAO,OAAO,CAAC;YACjB,CAAC;YAED,OAAO,CAAC,sBAAsB,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC;YACzD,MAAM,IAAI,KAAK,CAAC,MAAM,CAAC,KAAK,IAAI,sBAAsB,CAAC,CAAC;QAC1D,CAAC,CAAC,CAAC;IACL,CAAC;IAEO,eAAe,CAAC,IAAsB;QAC5C,oBAAoB,CAAC,IAAI,CAAC;YACxB,WAAW,EAAE,IAAI,CAAC,MAAM;YACxB,YAAY,EAAE,IAAI,CAAC,OAAO;YAC1B,UAAU,EAAE,IAAI,CAAC,OAAO,IAAI,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,GAAG,IAAI;YACpD,SAAS,EAAE,QAAQ;SACpB,CAAC,CAAC;IACL,CAAC;IAED,YAAY;QACV,MAAM,MAAM,GAAG,oBAAoB,CAAC,IAAI,EAAE,CAAC;QAC3C,IAAI,CAAC,MAAM;YAAE,OAAO,IAAI,CAAC;QAEzB,OAAO;YACL,IAAI,EAAE,OAAO;YACb,MAAM,EAAE,MAAM,CAAC,WAAW;YAC1B,OAAO,EAAE,MAAM,CAAC,YAAY;YAC5B,OAAO,EAAE,MAAM,CAAC,UAAU;SAC3B,CAAC;IACJ,CAAC;IAED,KAAK;QACH,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;QACxB,IAAI,CAAC,iBAAiB,GAAG,CAAC,CAAC;QAC3B,IAAI,CAAC,eAAe,GAAG,CAAC,CAAC;QACzB,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC;IACzB,CAAC;CACF;AAED,MAAM,CAAC,MAAM,YAAY,GAAG,IAAI,YAAY,EAAE,CAAC"}

package/dist/strategies/oauth.strategy.d.ts

@@ -0,0 +1,9 @@
+/**
+ * OAuth Device Flow strategy
+ * Implements OAuth 2.0 Device Authorization Grant (RFC 8628)
+ */
+import { DeviceAuthorization, TokenResponse } from "../types.js";
+export declare function authorizeDevice(): Promise<DeviceAuthorization>;
+export declare function pollForToken(deviceCode: string, codeVerifier: string, intervalSeconds: number, expiresIn: number): Promise<TokenResponse>;
+export declare function refreshAccessToken(refreshToken: string): Promise<TokenResponse>;
+//# sourceMappingURL=oauth.strategy.d.ts.map

package/dist/strategies/oauth.strategy.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth.strategy.d.ts","sourceRoot":"","sources":["../../src/strategies/oauth.strategy.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAsBH,OAAO,EAAE,mBAAmB,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAIjE,wBAAsB,eAAe,IAAI,OAAO,CAAC,mBAAmB,CAAC,CA8DpE;AAED,wBAAsB,YAAY,CAChC,UAAU,EAAE,MAAM,EAClB,YAAY,EAAE,MAAM,EACpB,eAAe,EAAE,MAAM,EACvB,SAAS,EAAE,MAAM,GAChB,OAAO,CAAC,aAAa,CAAC,CAsIxB;AAED,wBAAsB,kBAAkB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,CAAC,CA0FrF"}